Methods and systems for mitigating the effects of a malicious software application are disclosed. A dedicated module on the computing device receives from a malicious software detector a message indicating whether the application is malicious or has a malicious component. The dedicated module obtains a set of permissions to be granted to the application, and instructs software on the computing device that controls the permissions of the application to grant the set of permissions.
Legal claims defining the scope of protection, as filed with the USPTO.
1. A method for mitigating the effects of a malicious software application on a handheld wireless communication device, the method being performed by a dedicated module located on the handheld wireless communication device, the method comprising: the dedicated module executing the application using a program for executing unverified applications; the dedicated module monitoring a behavior of the application; the dedicated module recording behavior information pertaining to the monitored behavior of the application; the dedicated module forwarding the behavior information to a malicious software detector; the dedicated module receiving from the malicious software detector a message indicating that the application is malicious or has a malicious component; and in response to receiving the message from the malicious software detector, the dedicated module instructing software on the handheld wireless communication device that controls permissions of the application to inhibit at least one but not all permissions granted to the application.
2. The method of claim 1 , wherein at least one permission is received from the malicious software detector.
3. The method of claim 1 , wherein the malicious software detector is remote from said handheld wireless communication device and the dedicated module communicates with the malicious software detector through a wireless network.
4. The method of claim 1 , wherein the behavior information is compared with data stored on memory on the handheld wireless communication device to determine if the application is malicious or has a malicious component.
5. The method of claim 1 , wherein the program for executing unverified applications provides a controlled set of resources for the application to use while executing.
6. The method of claim 1 , wherein the behavior information comprises at least one of: a resource consumed by the application; data accessed by the application; and another application accessed by the application.
7. A system for mitigating the effects of a malicious software application on a handheld wireless communication device, the system comprising: a dedicated module on the handheld wireless communication device comprising computer executable instructions for executing the application using a program for executing unverified applications, monitoring a behavior of the application, recording behavior information pertaining to the monitored behavior of the application, forwarding the behavior information to a malicious software detector, and receiving from the malicious software detector a message indicating that the application is malicious or has a malicious component; and an applications control module on the handheld wireless communication device comprising computer executable instructions for controlling the permissions of the application, the dedicated module configured to instruct the applications control module to inhibit at least one but not all permissions granted to the application in response to receiving the message from the malicious software detector.
8. The system of claim 7 , wherein at least one permission is received from said malicious software detector.
9. The system of claim 7 , wherein the malicious software detector is located on a server remote from said handheld wireless communication device, and the dedicated module and the malicious software detector are configured to communicate through a wireless network.
10. The system of claim 7 , further comprising memory on the handheld wireless communication device for storing data to be compared to the behavior information, the dedicated module being configured to compare the behavior information with said data to determine if the application is malicious or has a malicious component.
11. The system of claim 7 , wherein the program for executing unverified applications provides a controlled set of resources for the application to use while executing.
12. The system of claim 7 , wherein the behavior information comprises at least one of: a resource consumed by the application; data accessed by the application; and another application accessed by the application.
13. A non-transitory computer readable medium having stored thereon computer readable instructions for mitigating the effects of a malicious software application on a handheld wireless communication device, the computer readable instructions comprising instructions for: executing the application using a program for executing unverified applications; monitoring a behavior of the application; recording behavior information pertaining to the monitored behavior of the application; forwarding the behavior information to a malicious software detector; receiving from the malicious software detector a message indicating that the application is malicious or has a malicious component; and in response to receiving the message from the malicious software detector, instructing software on the handheld wireless communication device that controls permissions of the application to inhibit at least one but not all permissions granted to the application.
14. The computer readable medium of claim 13 , wherein at least one permission is received from said malicious software detector.
15. The computer readable medium of claim 13 , wherein the malicious software detector is remote from said handheld wireless communication device and further comprising instructions for communicating with the malicious software detector through a wireless network.
16. The computer readable medium of claim 13 , further comprising instructions for comparing the behavior information with data stored on memory on the handheld wireless communication device to determine if the application is malicious or has a malicious component.
17. The computer readable medium of claim 13 , wherein the program for executing unverified applications provides a controlled set of resources for the application to use while executing.
18. The computer readable medium of claim 13 , wherein the behavior information comprises at least one of: a resource consumed by the application; data accessed by the application; and another application accessed by the application.
Cooperative Patent Classification codes for this invention. Click any code to explore related patents in that topic.
August 19, 2010
September 16, 2014
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.